Adam Shostack  Dec 21, 2022

Is the European Commission also paying Mastodon admins to patch their instances?

https://commission.europa.eu/news/european-commissions-open-source-programme-office-starts-bug-bounties-2022-01-19_en

European Commission's Open Source Programme Office starts bug bounties

Ethical hackers wanted, for fixing bugs in LibreOffice, LEOS, Mastodon, Odoo and CryptPad.

European Commission
Show threadAdam Shostack  Dec 21, 2022
Is anyone scanning the fediverse to see what the patching practices are today?
MezDec 21, 2022
Show threadAdam Shostack  
Less sarcastically I am confident that setting up a bug bounty for open source projects that aren’t ready for them, and not funding submission triage is actively counterproductive
Dec 21, 2022 at 2:25amWeb
Show threadMezDec 21, 2022
@adamshostack omg tots. There’s not a reblog with comments? Ok then.